Cisco публикува ъпдейти, отстраняващи уязвимости в сигурността на множество продукти. Нападател дистанционно би могъл да използва една от тези уязвимости, за да поеме контрол над засегнатата система.
CERT България препоръчва на потребителите и администраторите да се запознаят със следните съвети за сигурност на Cisco и да приложат необходимите ъпдейти.
SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privesca – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-sdwan-privesca
DNA Center Authentication Bypass Vulnerability cisco-sa-20190619-dnac-bypass – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-dnac-bypass
TelePresence Endpoint Command Shell Injection Vulnerability cisco-sa-20190619-tele-shell-inj – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-tele-shell-inj
StarOS Denial-of-Service Vulnerability cisco-sa-20190619-staros-asr-dos – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-staros-asr-dos
SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privilescal – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-sdwan-privilescal
SD-WAN Solution Command Injection Vulnerability cisco-sa-20190619-sdwan-cmdinj – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-sdwan-cmdinj
RV110W, RV130W, and RV215W Routers Management Interface Denial-of-Service Vulnerability cisco-sa-20190619-rvrouters-dos – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rvrouters-dos
Prime Service Catalog Cross-Site Request Forgery Vulnerability cisco-sa-20190619-psc-csrf – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-psc-csrf
Meeting Server CLI Command Injection Vulnerability cisco-sa-20190619-cms-codex – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-cms-codex